General
-
Target
19104a9ebcb0d9a8e46f69ada3aca1595b8636a511fc9d3a163773c867eb3a27
-
Size
369KB
-
Sample
211015-3jw5macdbq
-
MD5
76bcbce053176aff99e3e1a58ad0aa2f
-
SHA1
6c646c59f5e9c4ba50e446b701bcd08d44ee0ef8
-
SHA256
19104a9ebcb0d9a8e46f69ada3aca1595b8636a511fc9d3a163773c867eb3a27
-
SHA512
96f4d48641a818ba460c953a8a65979c8ceffd318cecc907ff01b41f2d5924ae073e8d9721e46bfc9f500278b997f0e07075ca0314174e3e9f2257b66d7e800b
Static task
static1
Malware Config
Extracted
redline
sewPalp
185.215.113.29:24645
Targets
-
-
Target
19104a9ebcb0d9a8e46f69ada3aca1595b8636a511fc9d3a163773c867eb3a27
-
Size
369KB
-
MD5
76bcbce053176aff99e3e1a58ad0aa2f
-
SHA1
6c646c59f5e9c4ba50e446b701bcd08d44ee0ef8
-
SHA256
19104a9ebcb0d9a8e46f69ada3aca1595b8636a511fc9d3a163773c867eb3a27
-
SHA512
96f4d48641a818ba460c953a8a65979c8ceffd318cecc907ff01b41f2d5924ae073e8d9721e46bfc9f500278b997f0e07075ca0314174e3e9f2257b66d7e800b
-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-